willem.com

WordPress security 10 security best practices

Keep your website safe and sound

Mar. 31, 2019 -

A lot of people use WordPress to manage their website, therefore it's no surprise people ask me to have a look at their site's security. As ethical hacker, I encounter WordPress in different shapes, sizes and states. Some of them are really badly protected against hacks. Prevent your site from being hacked using these 10 practical tips.

Continue reading
It's pretty hard hacking into my WP-Admin page because you cannot find it (hint: it's not at /wp-admin)
It's pretty hard hacking into my WP-Admin page because you cannot find it (hint: it's not at /wp-admin)
Sniff WordPress password using WireShark packet capturing (via blog.wpscans.com)
Sniff WordPress password using WireShark packet capturing (via blog.wpscans.com)
Limit access by IP basis to XML-RPC using a .htaccess file
Limit access by IP basis to XML-RPC using a .htaccess file
Use WP Security Audit Log to keep an eye on what's happening with your WordPress website (wpsecurityauditlog.com)
Use WP Security Audit Log to keep an eye on what's happening with your WordPress website (wpsecurityauditlog.com)
Somewhere in a datacenter there is a machine like this hosting your website
Somewhere in a datacenter there is a machine like this hosting your website
Leaking personal user information from the WordPress REST API
Leaking personal user information from the WordPress REST API

Other stories

all blog posts

Tagged

CloudCyber SecurityHackingNetworkingServerWebdesign